Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- command_directory = /usr/sbin
- daemon_directory = /usr/libexec/postfix
- data_directory = /var/lib/postfix
- mail_owner = postfix
- myhostname = host.mydomain.tld
- mydomain = mydomain.tld
- myorigin = mydomain.tld
- unknown_local_recipient_reject_code = 1
- recipient_delimiter = +
- mail_spool_directory = /var/mail
- debug_peer_level = 2
- debugger_command =
- PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
- ddd $daemon_directory/$process_name $process_id & sleep 5
- sendmail_path = /usr/sbin/sendmail
- newaliases_path = /usr/bin/newaliases
- mailq_path = /usr/bin/mailq
- setgid_group = postdrop
- html_directory = no
- manpage_directory = /usr/share/man
- sample_directory = /etc/postfix
- readme_directory = no
- inet_protocols = ipv4
- meta_directory = /etc/postfix
- shlib_directory = /usr/lib64/postfix/${mail_version}
- home_mailbox = .maildir/
- virtual_transport = dovecot
- smtpd_sasl_auth_enable = yes
- smtpd_sasl_type = dovecot
- smtpd_sasl_path = private/auth
- virtual_alias_maps = mysql:/etc/postfix/sql_virtual_alias_maps.cf
- virtual_mailbox_domains = mysql:/etc/postfix/sql_virtual_domain_maps.cf
- virtual_mailbox_maps = mysql:/etc/postfix/sql_virtual_mailbox_maps.cf
- local_recipient_maps = $virtual_mailbox_maps
- smtpd_sender_restrictions = reject_non_fqdn_sender
- smtpd_reject_unlisted_sender = yes
- smtpd_recipient_restrictions = permit_mynetworks,reject_non_fqdn_recipient,permit_sasl_authenticated,reject_unauth_destination
- compatibility_level = 2
- virtual_uid_maps = static:5000
- virtual_gid_maps = static:5000
- virtual_mailbox_base = /var/mail
- virtual_transport = dovecot
- smtpd_tls_security_level=may
- smtpd_tls_cert_file=/path/to/fullchain.pem
- smtpd_tls_key_file=/path/to/privkey.pem
- smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
- smtp_tls_security_level=may
- smtpd_tls_cert_file=/path/to/fullchain.pem
- smtpd_tls_key_file=/path/to/privkey.pem
- smtp_tls_mandatory_protocols = !SSLv2, !SSLv3
- smtp_tls_mandatory_ciphers=high
- smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
- smtpd_tls_dh1024_param_file = /path/to/dh_1024.pem
- smtpd_tls_dh512_param_file = /path/to/dh_512.pem
- #smtpd_tls_eecdh_grade = strong
- smtpd_tls_eecdh_grade = ultra
- tls_preempt_cipherlist = yes
- smtpd_tls_loglevel = 1
- smtp_tls_loglevel = 1
- smtpd_helo_required = yes
- disable_vrfy_command = yes
- smtpd_banner = $myhostname ESMTP NO UCE
- biff = no
- default_process_limit = 20
- maximal_queue_lifetime = 1h
- bounce_queue_lifetime = 1h
- maximal_backoff_time = 15m
- minimal_backoff_time = 5m
- queue_run_delay = 5m
- smtpd_milters = inet:localhost:11332
- non_smtpd_milters = inet:localhost:11332
- milter_protocol = 6
- milter_mail_macros = i {mail_addr} {client_addr} {client_name} {auth_authen}
- milter_default_action = accept
- smtpd_relay_restrictions = reject_non_fqdn_recipient
- reject_unknown_recipient_domain
- permit_mynetworks
- reject_unauth_destination
- smtpd_client_restrictions = permit_mynetworks
- check_client_access hash:/etc/postfix/without_ptr
- smtpd_helo_required = yes
- smtpd_helo_restrictions = permit_mynetworks
- reject_invalid_helo_hostname
- reject_non_fqdn_helo_hostname
- reject_unknown_helo_hostname
- smtpd_data_restrictions = reject_unauth_pipelining
- reject_non_fqdn_recipient,reject_unknown_recipient_domain,permit_mynetworks,permit_sasl_authenticated,reject
- postscreen_access_list = permit_mynetworks
- cidr:/etc/postfix/postscreen_access
- postscreen_blacklist_action = drop
- postscreen_greet_action = drop
- postscreen_dnsbl_threshold = 2
- postscreen_dnsbl_sites = ix.dnsbl.manitu.net*2
- zen.spamhaus.org*2
- postscreen_dnsbl_action = drop
- mailbox_size_limit = 0
- message_size_limit = 52428800
- append_dot_mydomain = no
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
